U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Cryptographic Module Validation Program CMVP

Certificate #3863

Details

Module Name
ID-One PIV 2.4 on Cosmo V8.2 NPIVP & CIV Configurations
Standard
FIPS 140-2
Status
Active
Sunset Date
3/23/2026
Overall Level
2
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
PIV Cert Number
46
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 4
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Single Chip
Description
ID-One PIV 2.4 on Cosmo V8.2, is a dual interface smartcard chip (ISO 7816 & ISO 14443) that contains a Personal Identity Verification (PIV) application with On-Card-Fingerprints-Comparison that can be configured to strictly comply with NIST FIPS 201-2 Standard for US Government Federal Employees and Contractors (NPIVP configuration), or support enhanced functionalities (ANSI 504), and additional access conditions (SO_PIN), as well as stronger cryptography (ECC P521) while maintaining backward compatibility with NPIVP, to address Civilian markets worldwide (CIV configuration).
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #C982 and #C989
CVL Certs. #C984, #C986 and #C991
DRBG Cert. #C987
ECDSA Cert. #C990
KAS-SSC vendor affirmed
KBKDF Cert. #C995
KDA vendor affirmed
KTS AES Cert. #C982 and AES Cert. #C989; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Cert. #C994
SHS Certs. #C978 and #C980
Triple-DES Cert. #C981
Allowed Algorithms
NDRNG
Hardware Versions
P/N ‘30’
Firmware Versions
['6F01' with ID-One PIV Applet 2.4.2 NPIVP configuration] and ['6F01' with ID-One PIV Applet 2.4.2 CIV configuration]

Vendor

IDEMIA
4250 Pleasant Valley Road
Chantilly, VA 20151
USA

Christophe GOYET
christophe.goyet@idemia.com
Phone: +1 (703) 322-8951

Validation History

Date Type Lab
3/24/2021 Initial UL VERIFICATION SERVICES INC